$ rpki-client -vvf rpki.apnic.net/member_repository/A91444E5/2E822DAA1B9111EC9E7A3114C4F9AE02/90AB89E4547511EEB44F391AC4F9AE02.roa File: 90AB89E4547511EEB44F391AC4F9AE02.roa (raw, json) Hash identifier: xx0/0c099Z+DcfDq5KxpcRvexWoXtqPp/xhoiOnuqgg= Subject key identifier: 97:02:BF:12:A9:93:CB:D1:CE:BF:F8:08:96:8C:33:2A:EA:D5:D8:D0 Certificate issuer: /CN=A91444E5/serialNumber=1608BF4624A7E1B723228B4661DD661E70AEF3F4 Certificate serial: 04BA Authority key identifier: 16:08:BF:46:24:A7:E1:B7:23:22:8B:46:61:DD:66:1E:70:AE:F3:F4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fgi_RiSn4bcjIotGYd1mHnCu8_Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91444E5/2E822DAA1B9111EC9E7A3114C4F9AE02/90AB89E4547511EEB44F391AC4F9AE02.roa Signing time: Tue 04 Mar 2025 09:01:22 +0000 ROA not before: Tue 04 Mar 2025 09:01:22 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 150389 IP address blocks: 103.170.208.0/23 maxlen: 23 103.170.208.0/24 maxlen: 24 103.170.209.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91444E5/2E822DAA1B9111EC9E7A3114C4F9AE02/Fgi_RiSn4bcjIotGYd1mHnCu8_Q.crl rsync://rpki.apnic.net/member_repository/A91444E5/2E822DAA1B9111EC9E7A3114C4F9AE02/Fgi_RiSn4bcjIotGYd1mHnCu8_Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fgi_RiSn4bcjIotGYd1mHnCu8_Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 23:56:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1210 (0x4ba) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91444E5 Validity Not Before: Mar 4 09:01:22 2025 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=67c6c161-f0e4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:e0:ba:32:1b:41:42:93:84:e4:b0:72:4b:a8: d3:aa:fa:67:19:e9:90:a8:05:15:4d:56:c0:68:3f: 1d:01:e8:74:0e:f6:f0:81:24:dc:0d:09:e6:02:76: d1:f8:dc:22:9a:60:85:53:7e:ed:bd:c0:03:21:87: b0:36:1f:9b:0f:c2:2d:8c:d4:e2:5c:09:99:09:63: e9:5d:ab:64:e6:91:0c:f9:9e:f2:bb:96:ad:af:15: 95:8e:bf:38:92:9d:c9:27:0e:2e:a7:49:24:c0:1f: 3d:ee:d7:cd:ed:82:98:7e:2e:5f:d0:bd:34:69:5b: 55:22:10:cd:8f:1e:17:0a:90:8b:7f:78:28:6d:d3: 3a:44:ef:9e:3a:38:ff:81:fa:5a:a8:89:44:b1:f8: 2e:0b:38:a2:34:4c:40:88:01:60:5a:ab:d3:76:48: 5a:25:f7:4c:46:aa:58:51:0f:d3:f7:41:e0:08:e0: 13:7c:2c:f3:b9:d7:ef:4c:30:42:15:bb:43:39:ad: 07:6a:c0:6b:a0:a4:ef:2c:64:52:2b:82:da:1a:f7: 02:3b:8c:38:f1:aa:e0:c7:98:d7:a8:33:8a:d2:4b: 7b:bb:95:a8:6d:d5:a1:e4:e0:6e:2c:1e:08:f2:2a: a9:18:32:8d:1f:48:50:5e:cd:30:ab:46:43:ef:2a: a6:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:02:BF:12:A9:93:CB:D1:CE:BF:F8:08:96:8C:33:2A:EA:D5:D8:D0 X509v3 Authority Key Identifier: keyid:16:08:BF:46:24:A7:E1:B7:23:22:8B:46:61:DD:66:1E:70:AE:F3:F4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91444E5/2E822DAA1B9111EC9E7A3114C4F9AE02/Fgi_RiSn4bcjIotGYd1mHnCu8_Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fgi_RiSn4bcjIotGYd1mHnCu8_Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91444E5/2E822DAA1B9111EC9E7A3114C4F9AE02/90AB89E4547511EEB44F391AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.170.208.0/23 Signature Algorithm: sha256WithRSAEncryption 72:dc:98:54:d4:c3:f3:ca:98:d4:7f:e0:ac:5d:0f:35:42:0a: 7b:bf:39:5c:4c:d8:b0:05:c1:56:59:ad:ea:ba:d4:65:f5:4e: 33:a8:41:9a:e0:7e:0b:7d:34:b7:96:35:b5:26:50:cd:cc:0b: e9:1b:23:59:4b:ef:6a:85:5b:57:38:25:63:b9:9d:21:8b:b1: 62:d6:74:6e:3d:0c:61:66:16:8d:9c:ce:9c:26:bc:82:e3:73: 44:26:30:e6:44:7f:fc:ef:60:85:fe:31:97:bf:d8:b4:d6:1c: c7:2d:6d:7e:69:f6:5d:25:ba:2b:bf:1b:90:2d:1c:c1:dc:49: 68:0a:a0:8a:55:4a:49:fc:47:58:be:82:03:95:d4:b1:fb:79: 27:a2:70:51:3e:d9:3e:70:d4:97:28:1c:d5:22:7b:74:bd:41: 6b:6c:a9:77:e4:06:ca:2d:20:8a:ed:1d:22:d9:0e:00:3f:9b: eb:7b:db:9d:5c:6a:f3:d2:e7:84:38:06:81:09:2a:85:4c:99: ff:03:5b:64:95:14:a6:2b:bf:c2:6f:33:f2:15:81:8c:32:43: 68:51:a0:d0:a2:48:5b:e1:73:61:4a:17:e6:59:c5:d7:3f:e8: 82:ab:dc:4e:db:de:a1:cb:de:92:85:5e:c6:71:38:dd:8c:ce: 3c:49:aa:84 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBLowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDQ0RTUxMTAvBgNVBAUTKDE2MDhCRjQ2MjRBN0UxQjcyMzIyOEI0NjYxREQ2NjFF NzBBRUYzRjQwHhcNMjUwMzA0MDkwMTIyWhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2M2YzE2MS1mMGU0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxOC6MhtBQpOE5LByS6jTqvpnGemQqAUVTVbAaD8dAeh0DvbwgSTcDQnmAnbR +NwimmCFU37tvcADIYewNh+bD8ItjNTiXAmZCWPpXatk5pEM+Z7yu5atrxWVjr84 kp3JJw4up0kkwB897tfN7YKYfi5f0L00aVtVIhDNjx4XCpCLf3gobdM6RO+eOjj/ gfpaqIlEsfguCziiNExAiAFgWqvTdkhaJfdMRqpYUQ/T90HgCOATfCzzudfvTDBC FbtDOa0HasBroKTvLGRSK4LaGvcCO4w48argx5jXqDOK0kt7u5WobdWh5OBuLB4I 8iqpGDKNH0hQXs0wq0ZD7yqm0QIDAQABo4IClTCCApEwHQYDVR0OBBYEFJcCvxKp k8vRzr/4CJaMMyrq1djQMB8GA1UdIwQYMBaAFBYIv0Ykp+G3IyKLRmHdZh5wrvP0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NDRFNS8yRTgyMkRBQTFC OTExMUVDOUU3QTMxMTRDNEY5QUUwMi9GZ2lfUmlTbjRiY2pJb3RHWWQxbUhuQ3U4 X1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZnaV9SaVNuNGJjaklvdEdZZDFtSG5DdThfUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDQ0RTUvMkU4MjJEQUExQjkxMTFFQzlFN0EzMTE0QzRGOUFFMDIvOTBBQjg5RTQ1 NDc1MTFFRUI0NEYzOTFBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnqtAwDQYJKoZIhvcNAQELBQADggEBAHLcmFTUw/PKmNR/ 4KxdDzVCCnu/OVxM2LAFwVZZreq61GX1TjOoQZrgfgt9NLeWNbUmUM3MC+kbI1lL 72qFW1c4JWO5nSGLsWLWdG49DGFmFo2czpwmvILjc0QmMOZEf/zvYIX+MZe/2LTW HMctbX5p9l0luiu/G5AtHMHcSWgKoIpVSkn8R1i+ggOV1LH7eSeicFE+2T5w1Jco HNUie3S9QWtsqXfkBsotIIrtHSLZDgA/m+t7251cavPS54Q4BoEJKoVMmf8DW2SV FKYrv8JvM/IVgYwyQ2hRoNCiSFvhc2FKF+ZZxdc/6IKr3E7b3qHL3pKFXsZxON2M zjxJqoQ= -----END CERTIFICATE-----Generated at Sun Apr 6 15:25:03 2025 by rpki-client